GitHub Hit With Massive DDoS Attack, China Allegedly Involved

GitHub Hit With Massive DDoS Attack, China Allegedly Involved

The popular coding website GitHub was hit with a massive denial-of-service (DDoS) attack late Thursday night, with some users experiencing intermittent service outages. According to security researcher and blogger Anthr@x, the ongoing attack, which intensified on and off for more than 24 hours, appeared to originate from the Chinese web services company Baidu: “A certaindevice at the border of China’s inner network and the Internet has hijacked the HTTP connections went into China, [and] replaced some javascript files from Baidu with malicious ones . . . every two seconds.”

In a recent update on GitHub’s Status page and Twitter, the company announced this morning: “We’ve deployed our volumetric attack defenses against an extremely large amount of traffic. Performance is stabilizing.”

Some have speculated the attack comes as a message to reinforce Chinese web censorship, obfuscating the means for Internet users to evade the country’s firewall.

“This could be the work of a hacktivist or other group sympathetic to Chinese interests, and not an attack officially sanctioned by the Chinese government,” said Tripwire Senior Security Analyst Ken Westin.

“It is still speculative at this point that this is the work of Chinese censors; however, if Chinese censors are involved in this attack, it is quite brazen and dangerous, as they have essentially hijacked users’ browsers within their own borders to participate in an attack against a specific service in the U.S.”